Windows SeBackupPrivilege Privilege Escalation - Dump SAM, SYSTEM, and NTDS.DIT

The SeBackupPrivilege can be used for privilege escalation because it allows a user to bypass file system security restrictions by enabling them to perform backup operations, including reading any ...

Nov 20, 2024 Windows Privilege Escalation

Just a Bloodhound

Install Bloodhound (Server) mkdir ~/bloodhound-docker cd ~/bloodhound-docker wget "https://raw.githubusercontent.com/SpecterOps/bloodhound/main/examples/docker-compose/docker-compose.yml" sudo doc...

Nov 20, 2024 Active Directory Pentest

Child Domain Trusts - Escalate Domain Admin to Enterprise Admin (SID Hijacking)

Enumeration: get-adtrust -filter * Manual Exploitation (Local) To execute all of this, we need execute through RDP! 1. Run mimikatz.exe from DC02 Gather the informations. privilege::deb...

Nov 20, 2024 Active Directory Privilege Escalation